Overview

overview

10

Static

static

3

cryptolaemus

windows10-2004-x64

10

cryptolaemus

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    860d439eecb6d88c22bfc900f6adc1bdcd0489f7852d6245750cbf7f0114d02f

  • Size

    124KB

  • Sample

    240715-ntdnpsxdnh

  • MD5

    312359d8e1ed04104a8dbf4b74eaffd6

  • SHA1

    1f5aba924ce75e5249d1178c4535097e369481a3

  • SHA256

    860d439eecb6d88c22bfc900f6adc1bdcd0489f7852d6245750cbf7f0114d02f

  • SHA512

    bbe1629c9cb359a78d55127a90d88428dd2c6c2a35f4811b0b00e3aa6df42ff9f97b58c6ad41f53c6a49a62e76cb36ed81b684cb24f264d71e662b10026591e0

  • SSDEEP

    3072:zSbEX48PdFcBO/zgCUDqAODiSQDSYEAYN3hjRpONBFO9M2Rk:ubEX481FcBuzTmCDDQbZY5hVpEBL

Score
10/10
strelastealer

Malware Config

Extracted

Family

strela

C2

45.9.74.32

Attributes
  • url_path

    /out.php

  • user_agent

    Mozilla/4.0 (compatible)

Targets

    • Target

      860d439eecb6d88c22bfc900f6adc1bdcd0489f7852d6245750cbf7f0114d02f

    • Size

      124KB

    • MD5

      312359d8e1ed04104a8dbf4b74eaffd6

    • SHA1

      1f5aba924ce75e5249d1178c4535097e369481a3

    • SHA256

      860d439eecb6d88c22bfc900f6adc1bdcd0489f7852d6245750cbf7f0114d02f

    • SHA512

      bbe1629c9cb359a78d55127a90d88428dd2c6c2a35f4811b0b00e3aa6df42ff9f97b58c6ad41f53c6a49a62e76cb36ed81b684cb24f264d71e662b10026591e0

    • SSDEEP

      3072:zSbEX48PdFcBO/zgCUDqAODiSQDSYEAYN3hjRpONBFO9M2Rk:ubEX481FcBuzTmCDDQbZY5hVpEBL

    Score
    10/10
    strelastealer

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

      stealerstrela
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks